gvisor: change syscall.RawSyscall to syscall.RawSyscall6 where required

Before https://golang.org/cl/173160 syscall.RawSyscall would zero out the last three register arguments to the system call. That no longer happens. For system calls that take more than three arguments, use RawSyscall6 to ensure that we pass zero, not random data, for the additional arguments. PiperOrigin-RevId: 271062527
author: gVisor bot <gvisor-bot@google.com> 2019-09-24 23:46:08 -0700
committer: gVisor bot <gvisor-bot@google.com> 2019-09-24 23:47:42 -0700
commit: 76ff1947b6e3703c2b9524e1086c791ceb4edb74 (patch)
tree: ceff086842c837ea730c45ad336d0b8c3eb6c3a1 /pkg/seccomp
parent: 2fb34c8d5ccf13388371437d128cc95d577fbc8a (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/pkg/seccomp/seccomp_unsafe.go b/pkg/seccomp/seccomp_unsafe.go
index 0a3d92854..be328db12 100644
--- a/pkg/seccomp/seccomp_unsafe.go
+++ b/pkg/seccomp/seccomp_unsafe.go
@@ -35,7 +35,7 @@ type sockFprog struct {
 //go:nosplit
 func SetFilter(instrs []linux.BPFInstruction) syscall.Errno {
 	// PR_SET_NO_NEW_PRIVS is required in order to enable seccomp. See seccomp(2) for details.
-	if _, _, errno := syscall.RawSyscall(syscall.SYS_PRCTL, linux.PR_SET_NO_NEW_PRIVS, 1, 0); errno != 0 {
+	if _, _, errno := syscall.RawSyscall6(syscall.SYS_PRCTL, linux.PR_SET_NO_NEW_PRIVS, 1, 0, 0, 0, 0); errno != 0 {
 		return errno
 	}
author	gVisor bot <gvisor-bot@google.com>	2019-09-24 23:46:08 -0700
committer	gVisor bot <gvisor-bot@google.com>	2019-09-24 23:47:42 -0700
commit	76ff1947b6e3703c2b9524e1086c791ceb4edb74 (patch)
tree	ceff086842c837ea730c45ad336d0b8c3eb6c3a1 /pkg/seccomp
parent	2fb34c8d5ccf13388371437d128cc95d577fbc8a (diff)